2 matches found
CVE-2008-3354
Multiple PHP remote file inclusion vulnerabilities in the Newbb Plus newbbplus module 0.93 in RunCMS 1.6.1 allow remote attackers to execute arbitrary PHP code via a URL in the 1 bbPathpath parameter to votepolls.php and the 2 bbPathroottheme parameter to config.php, different vectors than...
CVE-2008-3354
CVE-2008-3354 concerns RunCMS 1.6.1 with the Newbb Plus 0.93 module, where multiple PHP remote file inclusion vulnerabilities allow an attacker to execute arbitrary PHP code. Specifically, the flaw is triggered by supplying a URL in the bbPath[path] parameter to votepolls.php and in the bbPath[ro...